cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

~ ZHPDiag v2015.7.27.104 Por Nicolas Coolman (2015/07/27)
~ iniciado por ISAIAS (Administrator) (2015/07/27 21:47:27)
~ Site: http://www.nicolascoolman.fr
~ Facebook: https://www.facebook.com/nicolascoolman1
~ Status da versão: Version OK
~ Modo: Scanner
~ Relatório: C:\Users\ISAIAS\Desktop\ZHPDiag.txt
~ Relatório: C:\Users\ISAIAS\AppData\Roaming\ZHP\ZHPDiag.txt
~ UAC: Activate
~ Inicialização do sistema: Normal (Normal boot)
~ Windows VISTA, 32-bit Service Pack 2 (Build 6002)

---\\ Navegadores Internet (2) - 0s
MFIE: Mozilla Firefox 39.0 (x86 pt-BR) v39.0
MSIE: Internet Explorer v9.0.8112.16421

---\\ Informações sobre os produtos Windows (3) - 17s
~ Windows Server License Manager Script : OK
~ Licence Script File Génération : OK
Windows Automatic Updates : OK (Auto)

---\\ Softwares de proteçao do sistema (1) - 1s
Malwarebytes Anti-Malware versão 2.1.8.1057

---\\ Softwares de proteçao do sistema (Supérfluo) (1) - 1s
ESET Online Scanner v3

---\\ Softwares d'optimização do sistema (1) - 1s
CCleaner v4.13

---\\ Monitoramento dos softwares (2) - 1s
Adobe Flash Player 18 NPAPI
Adobe Reader 9.5.5 - Português

---\\ Informações sobre o sistema (6) - 0s
~ Operating System: x86 Family 6 Model 15 Stepping 13, GenuineIntel
~ Operating System: 32-bit
~ Boot mode: Normal (Normal boot)
Total RAM: 1960.256 MB (34% free)
~ System Restore: Activé (Enable)
~ System drive C: has 15 GB free of 143 GB

---\\ Modo de conexão ao sistema (3) - 0s
~ Computer Name: ISAIAS-PC
~ User Name: ISAIAS
~ Logged in as Administrator

---\\ Enumeração das unidades dos discos (2) - 0s
~ Drive C: has 15 GB free of 143 GB (System)
~ Drive H: has 0 GB free of 3 GB

---\\ Estado do Centro de Segurança do Windows (14) - 0s
[HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK
[HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableTaskMgr: OK
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System] DisableRegistryTools: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] EnableLUA: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\NOHIDDEN] CheckedValue: Modified
[HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings] WarnOnHTTPSToHTTPRedirect: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] CheckedValue: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] Application: OK
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] Shell: OK
[HKLM\SYSTEM\CurrentControlSet\Services\COMSysApp] Type: OK
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install] LastSuccessTime : OK

---\\ Pesquisa particular de ficheiros genéricos (22) - 2s
[MD5.D07D4C3038F3578FFCE1C0237F2A1253] - (.Microsoft Corporation - Windows Explorer.) () -- C:\Windows\Explorer.exe [2926592]
[MD5.4B555106290BD117334E9A08761C035A] - (.Microsoft Corporation - Processo de host do Windows (Rundll32).) () -- C:\Windows\System32\rundll32.exe [44544]
[MD5.101BA3EA053480BB5D957EF37C06B5ED] - (.Microsoft Corporation - Aplicativo de Inicialização do Windows.) () -- C:\Windows\System32\Wininit.exe [96768]
[MD5.8F7EB54EC6C488FC086FB4AC3BB29BBD] - (.Microsoft Corporation - Internet Extensions para Win32.) () -- C:\Windows\System32\wininet.dll [1129472]
[MD5.898E7C06A350D4A1A64A9EA264D55452] - (.Microsoft Corporation - Aplicativo de Logon do Windows.) () -- C:\Windows\System32\Winlogon.exe [314368]
[MD5.F5272A105F59A7B3B345D9D6D87DA7AD] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) () -- C:\Windows\System32\drivers\AFD.sys [273408]
[MD5.2D9C903DC76A66813D350A562DE40ED9] - (.Microsoft Corporation - ATAPI IDE Miniport Driver.) () -- C:\Windows\System32\drivers\atapi.sys [21560]
[MD5.7ADD03E75BEB9E6DD102C3081D29840A] - (.Microsoft Corporation - CD-ROM File System Driver.) () -- C:\Windows\System32\drivers\Cdfs.sys [70144]
[MD5.6B4BFFB9BECD728097024276430DB314] - (.Microsoft Corporation - SCSI CD-ROM Driver.) () -- C:\Windows\System32\drivers\Cdrom.sys [67072]
[MD5.622C41A07CA7E6DD91770F50D532CB6C] - (.Microsoft Corporation - DFS Namespace Client Driver.) () -- C:\Windows\System32\drivers\DfsC.sys [75264]
[MD5.062452B7FFD68C8C042A6261FE8DFF4A] - (.Microsoft Corporation - High Definition Audio Bus Driver.) () -- C:\Windows\System32\drivers\HDAudBus.sys [561152]
[MD5.22D56C8184586B7A1F6FA60BE5F5A2BD] - (.Microsoft Corporation - Driver de porta i8042.) () -- C:\Windows\System32\drivers\i8042prt.sys [54784]
[MD5.8793643A67B42CEC66490B2A0CF92D68] - (.Microsoft Corporation - IP Network Address Translator.) () -- C:\Windows\System32\drivers\IpNat.sys [100864]
[MD5.1B864548B2ACEC1C0BB29B615CC42978] - (.Microsoft Corporation - Windows NT SMB Minirdr.) () -- C:\Windows\System32\drivers\MRxSmb.sys [107008]
[MD5.ECD64230A59CBD93C85F1CD1CAB9F3F6] - (.Microsoft Corporation - MBT Transport driver.) () -- C:\Windows\System32\drivers\netBT.sys [185856]
[MD5.2C1121F2B87E9A6B12485DF53CD848C7] - (.Microsoft Corporation - Driver do Sistema de Arquivos NT.) () -- C:\Windows\System32\drivers\ntfs.sys [1082232]
[MD5.0FA9B5055484649D63C303FE404E5F4D] - (.Microsoft Corporation - Driver de porta paralela.) () -- C:\Windows\System32\drivers\Parport.sys [79360]
[MD5.A214ADBAF4CB47DD2728859EF31F26B0] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) () -- C:\Windows\System32\drivers\Rasl2tp.sys [76288]
[MD5.FBC0BACD9C3D7F6956853F64A66E252D] - (.Microsoft Corporation - Microsoft RDP Device redirector.) () -- C:\Windows\System32\drivers\rdpdr.sys [248832]
[MD5.7B75299A4D201D6A6533603D6914AB04] - (.Microsoft Corporation - SMB Transport driver.) () -- C:\Windows\System32\drivers\smb.sys [66560]
[MD5.76B06EB8A01FC8624D699E7045303E54] - (.Microsoft Corporation - TDI Translation Driver.) () -- C:\Windows\System32\drivers\tdx.sys [72192]
[MD5.786DB5771F05EF300390399F626BF30A] - (.Microsoft Corporation - Driver de cópia de sombra de volume.) () -- C:\Windows\System32\drivers\volsnap.sys [224640]

---\\ Processos lançados (21) - 8s
[MD5.4F440DCDB7C8C14DEDDB1D63B94335D1] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files\GbPlugin\gbpsv.exe [579896] [PID.904]
[MD5.65330E78C17DB8A99A7FF1BA3C8824B6] - (.Realtek Semiconductor - Realtek Audio Service.) -- C:\Windows\RtkAudioService.exe [104992] [PID.1496]
[MD5.E8FE4FCE23D2809BD88BCC1D0F8408CE] - (...) -- C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [124832] [PID.2000]
[MD5.A1CDF0E7CB409B05EE22F9035CB33C8B] - (.ArcSoft, Inc. - MgiSvr.) -- C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe [104960] [PID.1484]
[MD5.6511F35B6187F2B86403794BFF8C098E] - (...) -- C:\Program Files\Join Air\AssistantServices.exe [270672] [PID.1348]
[MD5.693A3FDD279C345105FFF9DDE277849B] - (.Sony Corporation - VAIO Event Service (Service Module).) -- C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182112] [PID.2092]
[MD5.43CEC9BF5A4F2917982AD01D92E0F44D] - (.Sony Corporation - SPMService.exe.) -- C:\Program Files\Sony\VAIO Power Management\SPMService.exe [411488] [PID.2112]
[MD5.CBCBE2233D21E9B278F95F5CB28BC8AE] - (.Sony Corporation - VAIO Content Folder Watcher.) -- C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [415744] [PID.2224]
[MD5.B0C84CEA4FE07231BA87A054AF95984D] - (.Sony Corporation - VAIO Event Service(Service Sub Module).) -- C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe [100472] [PID.2232]
[MD5.071634532066C2E29350D450C3412837] - (.Sony Corporation - VAIO Entertainment Database Service.) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [192512] [PID.2396]
[MD5.ED6BB091F7DCE95FEE74FE328DCB5053] - (.GAS Tecnologia LTDA - GAS Tecnologia - Core.) -- C:\Program Files\Diebold\Warsaw\core.exe [507704] [PID.2468]
[MD5.15A317674A08DF26BE65164D959E9203] - (.Conexant Systems, Inc. - Modem Audio Service.) -- C:\Windows\System32\drivers\XAudio.exe [386560] [PID.2908]
[MD5.4F440DCDB7C8C14DEDDB1D63B94335D1] - (.GAS Tecnologia - G-Buster Browser Defense - Service.) -- C:\Program Files\GbPlugin\gbpsv.exe [579896] [PID.3040]
[MD5.26147FDF9C6AA5E957AA3D968AFE9CE8] - (.Sony Corporation - SPMgr.exe.) -- C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [1771360] [PID.3560]
[MD5.53CEFA50B4DC8282CC80EED972CF25E3] - (.Sony Corporation - VAIO Update.) -- C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [866144] [PID.3772]
[MD5.65533F93E9FDEB73D0C1397EAAC3F351] - (...) -- C:\Program Files\Oi\Programmer\OiVeloxCheck.exe [614400] [PID.3828]
[MD5.ED6BB091F7DCE95FEE74FE328DCB5053] - (.GAS Tecnologia LTDA - GAS Tecnologia - Core.) -- C:\Program Files\Diebold\Warsaw\core.exe [507704] [PID.3868]
[MD5.E5703839EE9DD7FACE721CF56E3F9963] - (.MyCity - MCShield Real-Time Monitor.) -- C:\Program Files\MCShield\MCShieldRTM.exe [650816] [PID.3900]
[MD5.4AB8A0790E6337D3A37DC2E2C48B00DB] - (.Sony Corporation - VAIO Entertainment UPnP Client Adapter.) -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [279848] [PID.2160]
[MD5.432F4E8794A2EA8A64E4C75EA80B790E] - (.BitTorrent Inc. - µTorrent.) -- C:\Users\ISAIAS\AppData\Roaming\uTorrent\uTorrent.exe [1694560] [PID.2656]
[MD5.AB7A87006C3E8376FCB794951BD4E986] - (.Last.fm - Last.fm.) -- C:\Program Files\Last.fm\Last.fm Scrobbler.exe [1765856] [PID.4460]

---\\ Mozilla Firefox, Plugins,Arranque,Pesquisa,Extensões (P2,M0,M1,M2,M3) (19) - 6s
P2 - EXT: (.Sun Microsystems, Inc. - NPRuntime Script Plug-in Library for Java(T.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeployJava1.dll
P2 - EXT: (.RealNetworks, Inc. - RealPlayer(tm) LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll
P2 - EXT: (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\bing.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\buscape.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\ddg.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\google.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\mercadolivre.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\twitter.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\wikipedia-br.xml
P2 - EXT: (...) -- C:\Program Files\Mozilla Firefox\browser\searchplugins\yahoo-br.xml
P2 - EXT: (.Mozilla - Default.) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
P2 - FPN: [HKCU] [gastecnologia.com.br/sf/bb] - (.GAS Tecnologia.) -- C:\Users\ISAIAS\AppData\Local\GAS Tecnologia\GBBD\npsf_bb.dll
P2 - FPN: [HKLM] [@adobe.com/FlashPlayer] - (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\NPSWF32_18_0_0_209.dll
P2 - FPN: [HKLM] [@garmin.com/GpsControl] - (.GARMIN Corp..) -- C:\Program Files\Garmin GPS Plugin\npGarmin.dll
P2 - FPN: [HKLM] [@java.com/JavaPlugin] - (.Sun Microsystems, Inc..) -- C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll
P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.450] - (.RealNetworks, Inc..) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nppl3260.dll
P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.448] - (.RealNetworks, Inc..) -- C:\Program Files\K-Lite Codec Pack\Real\Browser\Plugins\nprpjplug.dll
P2 - FPN: [HKLM] [@videolan.org/vlc,version=2.0.5] - (.VideoLAN.) -- C:\Program Files\VideoLAN\VLC\npvlc.dll

---\\ Internet Explorer, Arranque, Pesquisa, URLSearchHook( gancho de URL), Phishing (R0,R1,R3,R4) (15) - 1s
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
R0 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://www.google.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Extensions Off Page = about:noadd-ons
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Security Risk Page = about:securityrisk
R1 - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/
R1 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com
R3 - URLSearchHook: (no name) - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} Orphean =>.Microsoft Internet Explorer
R4 - HKCU\SOFTWARE\Microsoft\Internet Explorer\PhishingFilter,Enabled = 2

---\\ Internet Explorer, Gestão do Proxy (R5) (3) - 0s
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll

---\\ Análise das linhas F0, F1, F2, F3 - Ficheiros ini, Carregamento Automático de programas (3) - 0s
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe (.Microsoft Corporation.)
F2 - REG:system.ini: Shell=C:\Windows\explorer.exe (.Microsoft Corporation.)
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"

---\\ Redireção do ficheiro Hosts (O1) (1) - 1s
~ Le fichier hôte est sain (The hosts file is clean) (20)

---\\ Browser Helper Objects do navegador (O2) (4) - 0s
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: G-Buster Browser Defense - {C41A1C0E-EA6C-11D4-B1B8-444553540000} . (.Banco do Brasil - Gbieh Module.) -- C:\PROGRAM FILES\GbPlugin\gbieh.dll
O2 - BHO: G-Buster Browser Defense CEF - {C41A1C0E-EA6C-11D4-B1B8-444553540003} . (.Caixa Economica Federal - Gbieh Module.) -- C:\Program Files\GbPlugin\gbiehcef.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll

---\\ Aplicações iniciadas por registo & pastas (O4) (11) - 2s
O4 - HKLM\..\Run: [OiVelox] . (...) -- C:\Program Files\Oi\Programmer\OiVeloxCheck.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] . (.Microsoft Corporation - User session Windows Mobile device handler.) -- C:\Windows\WindowsMobile\wmdSync.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [Diebold - Warsaw] . (.GAS Tecnologia LTDA - GAS Tecnologia - Core.) -- C:\Program Files\Diebold\Warsaw\core.exe
O4 - HKCU\..\Run: [Sidebar] . (.Microsoft Corporation - Barra Lateral do Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKCU\..\Run: [MCShield Monitor] . (.MyCity - MCShield Real-Time Monitor.) -- C:\Program Files\MCShield\mcshieldrtm.exe
O4 - HKCU\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Aplicativo de Configuração do Serviço de co.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe
O4 - HKUS\S-1-5-21-3892671904-924784273-1446608767-1000\..\Run: [Sidebar] . (.Microsoft Corporation - Barra Lateral do Windows.) -- C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-21-3892671904-924784273-1446608767-1000\..\Run: [MCShield Monitor] . (.MyCity - MCShield Real-Time Monitor.) -- C:\Program Files\MCShield\mcshieldrtm.exe
O4 - HKUS\S-1-5-21-3892671904-924784273-1446608767-1000\..\Run: [WMPNSCFG] . (.Microsoft Corporation - Aplicativo de Configuração do Serviço de co.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe

---\\ Alteração Dominio/Clientes DNS (017) (8) - 0s
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.222.222,208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 208.67.222.222 208.67.220.220
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.254
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1

---\\ Lista dos serviços NT não Microsoft e não desativados (023) (13) - 4s
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) . (...) - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: Gbp Service (GbpSv) . (.GAS Tecnologia - G-Buster Browser Defense - Service.) - C:\Program Files\GbPlugin\gbpsv.exe
O23 - Service: (MBAMService) . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Realtek Audio Service (RtkAudioService) . (.Realtek Semiconductor - Realtek Audio Service.) - C:\Windows\RtkAudioService.exe
O23 - Service: Skype Updater (SkypeUpdate) . (.Skype Technologies - Skype Updater Service.) - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: CamMonitor (uCamMonitor) . (.ArcSoft, Inc. - MgiSvr.) - C:\Program Files\ArcSoft\Magic-i Visual Effects\uCamMonitor.exe
O23 - Service: UI Assistant Service (UI Assistant Service) . (...) - C:\Program Files\Join Air\AssistantServices.exe
O23 - Service: VAIO Event Service (VAIO Event Service) . (.Sony Corporation - VAIO Event Service (Service Module).) - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: (VAIO Power Management) . (.Sony Corporation - SPMService.exe.) - C:\Program Files\Sony\VAIO Power Management\SPMService.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) . (.Sony Corporation - VAIO Content Folder Watcher.) - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) . (.Sony Corporation - VAIO Entertainment Database Service.) - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: Warsaw Technology (Warsaw Technology) . (.GAS Tecnologia LTDA - GAS Tecnologia - Core.) - C:\Program Files\Diebold\Warsaw\core.exe
O23 - Service: XAudioService (XAudioService) . (.Conexant Systems, Inc. - Modem Audio Service.) - C:\Windows\System32\drivers\XAudio.exe

---\\ Tarefas planificadas automaticamente (039) (7) - 4s
[MD5.9B3355B29942AF67F014EA90CE1EA960] [APT] [Adobe Flash Player Updater] (.Adobe Systems Incorporated.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe [268976]
[MD5.03E07421C99D99D2DB8F4E5CCB890B23] [APT] [CCleanerSkipUAC] (.Piriform Ltd.) -- C:\Program Files\CCleaner\CCleaner.exe [4524312]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\Tasks\Adobe Flash Player Updater.job [902]
O39 - APT: Adobe Flash Player Updater - (...) -- C:\Windows\System32\Tasks\Adobe Flash Player Updater [3754]
O39 - APT: CCleanerSkipUAC - (.Piriform Ltd.) -- C:\Windows\System32\Tasks\CCleanerSkipUAC [2774]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\desligar [3150]
O39 - APT: Orphean - (...) -- C:\Windows\System32\Tasks\{5D5E16CA-5DFB-4B26-A79C-5616192F2707} [3214]

---\\ Software instalados (042) (25) - 28s
O42 - Logiciel: Adobe Flash Player 18 NPAPI - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player NPAPI
O42 - Logiciel: CCleaner - (.Piriform.) [HKLM] -- CCleaner
O42 - Logiciel: ESET Online Scanner v3 - (...) [HKLM] -- ESET Online Scanner
O42 - Logiciel: Last.fm Scrobbler 2.1.37 - (.Last.fm.) [HKLM] -- LastFM_is1
O42 - Logiciel: Malwarebytes Anti-Malware versão 2.1.8.1057 - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes Anti-Malware_is1
O42 - Logiciel: MCShield ::Anti-Malware Tool:: - (.MyCity.) [HKLM] -- MCShield
O42 - Logiciel: Mozilla Firefox 39.0 (x86 pt-BR) - (.Mozilla.) [HKLM] -- Mozilla Firefox 39.0 (x86 pt-BR)
O42 - Logiciel: Mozilla Maintenance Service - (.Mozilla.) [HKLM] -- MozillaMaintenanceService
O42 - Logiciel: MultiBit 0.5.12 - (...) [HKLM] -- MultiBit 0.5.12
O42 - Logiciel: MultiDoge 0.1.4 - (...) [HKLM] -- MultiDoge 0.1.4
O42 - Logiciel: Oi Velox - (.LightComm Tecnologia.) [HKLM] -- programmeroi_is1
O42 - Logiciel: Recuva - (.Piriform.) [HKLM] -- Recuva
O42 - Logiciel: VLC media player 2.0.5 - (.VideoLAN.) [HKLM] -- VLC media player
O42 - Logiciel: Warsaw 1.5.1.8886 32 bits - (.GAS Tecnologia.) [HKLM] -- {20E60725-16C8-4FB9-8BC2-AF92C5F8D06D}_is1
O42 - Logiciel: Skype™ 7.0 - (.Skype Technologies S.A..) [HKLM] -- {24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
O42 - Logiciel: Módulo de Segurança - Banco do Brasil - (...) [HKLM] -- {36386dc9-8543-4b12-ae6b-220fd52f19f3}_is1
O42 - Logiciel: XP PRO - (.XP Investimentos.) [HKLM] -- {6C2285CA-52B3-4983-9047-DD96113B48BB}_is1
O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
O42 - Logiciel: Pacote de Compatibilidade para o sistema Office 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0020-0416-0000-0000000FF1CE}
O42 - Logiciel: Adobe Reader 9.5.5 - Português - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1046-7B44-A95000000001}
O42 - Logiciel: Facebook Video Calling 1.2.0.287 - (.Skype Limited.) [HKLM] -- {B92C5909-1D37-4C51-8397-A28BB28E5DC3}
O42 - Logiciel: Microsoft Works - (.Microsoft Corporation.) [HKLM] -- {EE5B6291-45EF-4705-A20E-89A3C5D2F87E}
O42 - Logiciel: Litecoin - (.Litecoin project.) [HKCU] -- Litecoin
O42 - Logiciel: Litecoin Core (32-bit) - (.Litecoin Core project.) [HKCU] -- Litecoin Core (32-bit)
O42 - Logiciel: µTorrent - (.BitTorrent Inc..) [HKCU] -- uTorrent

---\\ HKCU & HKLM Software Keys (151) - 28s
HKLM\SOFTWARE\Acro Software Inc
HKLM\SOFTWARE\Adobe
HKLM\SOFTWARE\AdwCleaner
HKLM\SOFTWARE\Apple Computer, Inc.
HKLM\SOFTWARE\ArcSoft
HKLM\SOFTWARE\Autodesk
HKLM\SOFTWARE\AutoHelpDesk
HKLM\SOFTWARE\Codec Tweak Tool
HKLM\SOFTWARE\COMODO
HKLM\SOFTWARE\Conexant
HKLM\SOFTWARE\Conexant Systems Inc
HKLM\SOFTWARE\CXT
HKLM\SOFTWARE\Digital River
HKLM\SOFTWARE\DivX
HKLM\SOFTWARE\DivXNetworks
HKLM\SOFTWARE\Eset
HKLM\SOFTWARE\Extended Systems
HKLM\SOFTWARE\Gabest
HKLM\SOFTWARE\Garmin
HKLM\SOFTWARE\GEAR Software
HKLM\SOFTWARE\GNU
HKLM\SOFTWARE\Google
HKLM\SOFTWARE\GPL Ghostscript
HKLM\SOFTWARE\HaaliMkx
HKLM\SOFTWARE\Hewlett-Packard
HKLM\SOFTWARE\HP
HKLM\SOFTWARE\Huawei technologies
HKLM\SOFTWARE\IM Providers
HKLM\SOFTWARE\InstalledOptions
HKLM\SOFTWARE\Intel
HKLM\SOFTWARE\InterVideo
HKLM\SOFTWARE\JavaSoft
HKLM\SOFTWARE\JreMetrics
HKLM\SOFTWARE\Jubler
HKLM\SOFTWARE\KLCodecPack
HKLM\SOFTWARE\Last.fm
HKLM\SOFTWARE\Licenses
HKLM\SOFTWARE\LightComm
HKLM\SOFTWARE\Litecoin
HKLM\SOFTWARE\Litecoin Core (32-bit)
HKLM\SOFTWARE\Macromedia
HKLM\SOFTWARE\Macrovision
HKLM\SOFTWARE\Malwarebytes' Anti-Malware
HKLM\SOFTWARE\McAfee.com
HKLM\SOFTWARE\MCShield
HKLM\SOFTWARE\Mozilla
HKLM\SOFTWARE\mozilla.org
HKLM\SOFTWARE\MozillaPlugins
HKLM\SOFTWARE\ODBC
HKLM\SOFTWARE\Piriform
HKLM\SOFTWARE\Post
HKLM\SOFTWARE\PPCoin
HKLM\SOFTWARE\RealNetworks
HKLM\SOFTWARE\Realtek
HKLM\SOFTWARE\RegisteredApplications
HKLM\SOFTWARE\Research In Motion
HKLM\SOFTWARE\Roxio
HKLM\SOFTWARE\S3R521
HKLM\SOFTWARE\Safer Networking Limited
HKLM\SOFTWARE\Skype
HKLM\SOFTWARE\Sonic
HKLM\SOFTWARE\Sony Corporation
HKLM\SOFTWARE\SOSVirus
HKLM\SOFTWARE\Sunbelt Software
HKLM\SOFTWARE\Synaptics
HKLM\SOFTWARE\Tqdigital
HKLM\SOFTWARE\TrendMicro
HKLM\SOFTWARE\VideoLAN
HKLM\SOFTWARE\Volatile
HKLM\SOFTWARE\WexTech Systems
HKLM\SOFTWARE\Yahoo
HKLM\SOFTWARE\ZTE Corporation
HKCU\SOFTWARE\ACE Compression Software
HKCU\SOFTWARE\Acro Software Inc
HKCU\SOFTWARE\adobe
HKCU\SOFTWARE\Amigo Mouse
HKCU\SOFTWARE\AppDataLow
HKCU\SOFTWARE\Apple Computer, Inc.
HKCU\SOFTWARE\Apple Inc.
HKCU\SOFTWARE\ASProtect
HKCU\SOFTWARE\Autodesk
HKCU\SOFTWARE\AutoHelpDesk
HKCU\SOFTWARE\BitTorrent
HKCU\SOFTWARE\BusinessCards
HKCU\SOFTWARE\CDDB
HKCU\SOFTWARE\CoreVorbis
HKCU\SOFTWARE\DivXNetworks
HKCU\SOFTWARE\DSP-worx
HKCU\SOFTWARE\eMule
HKCU\SOFTWARE\ESET
HKCU\SOFTWARE\Extended Systems
HKCU\SOFTWARE\foobar2000
HKCU\SOFTWARE\Gabest
HKCU\SOFTWARE\GbAs
HKCU\SOFTWARE\GbPlugin
HKCU\SOFTWARE\GNU
HKCU\SOFTWARE\Google
HKCU\SOFTWARE\GSpot Appliance Corp
HKCU\SOFTWARE\Haali
HKCU\SOFTWARE\Hewlett-Packard
HKCU\SOFTWARE\IM Providers
HKCU\SOFTWARE\Intel
HKCU\SOFTWARE\InterVideo
HKCU\SOFTWARE\JavaSoft
HKCU\SOFTWARE\kde.org
HKCU\SOFTWARE\Last.fm
HKCU\SOFTWARE\Leadertech
HKCU\SOFTWARE\Litecoin
HKCU\SOFTWARE\Litecoin Core (32-bit)
HKCU\SOFTWARE\Local AppWizard-Generated Applications
HKCU\SOFTWARE\Macromedia
HKCU\SOFTWARE\madFlac
HKCU\SOFTWARE\Magnet
HKCU\SOFTWARE\MainConcept
HKCU\SOFTWARE\Malwarebytes' Anti-Malware
HKCU\SOFTWARE\MCShield
HKCU\SOFTWARE\MediaInfo
HKCU\SOFTWARE\MONOGRAM
HKCU\SOFTWARE\Mozilla
HKCU\SOFTWARE\MozillaPlugins
HKCU\SOFTWARE\MyDefrag
HKCU\SOFTWARE\Netscape
HKCU\SOFTWARE\ODBC
HKCU\SOFTWARE\Piriform
HKCU\SOFTWARE\Positivo
HKCU\SOFTWARE\PPCoin
HKCU\SOFTWARE\pschmid.net
HKCU\SOFTWARE\QtProject
HKCU\SOFTWARE\RealNetworks
HKCU\SOFTWARE\Realtek
HKCU\SOFTWARE\Research In Motion
HKCU\SOFTWARE\Roxio
HKCU\SOFTWARE\Skype
HKCU\SOFTWARE\SkypeRS
HKCU\SOFTWARE\SlimWare Utilities Inc
HKCU\SOFTWARE\Smart Soft
HKCU\SOFTWARE\Sonic
HKCU\SOFTWARE\Sony Corporation
HKCU\SOFTWARE\Synaptics
HKCU\SOFTWARE\Sysinternals
HKCU\SOFTWARE\Trolltech
HKCU\SOFTWARE\Vagalume
HKCU\SOFTWARE\VB and VBA Program Settings
HKCU\SOFTWARE\VidaNova
HKCU\SOFTWARE\Winamp
HKCU\SOFTWARE\WinRAR
HKCU\SOFTWARE\XP
HKCU\SOFTWARE\Yahoo
HKCU\SOFTWARE\ZebHelpProcess Helper
HKCU\SOFTWARE\AppDataLow\Software
HKCU\SOFTWARE\AppDataLow\Software\Yahoo

---\\ Conteúdo das pastas Programs/ProgramFiles/ProgramData/AppData (O43) (252) - 29s
O43 - CFD: 2009/06/29 18:17:35 - [] D -- C:\Program Files\Acro Software
O43 - CFD: 2014/09/26 16:47:01 - [] D -- C:\Program Files\Adobe
O43 - CFD: 2009/09/26 13:48:51 - [] D -- C:\Program Files\AnswerWorks 4.0
O43 - CFD: 2008/10/03 15:05:02 - [] D -- C:\Program Files\ArcSoft
O43 - CFD: 2014/05/25 11:05:17 - [] D -- C:\Program Files\Ares
O43 - CFD: 2011/07/16 22:41:03 - [] D -- C:\Program Files\Audacity 1.3 Beta (Unicode)
O43 - CFD: 2009/09/26 13:49:58 - [] D -- C:\Program Files\AutoCAD 2006
O43 - CFD: 2009/09/26 13:39:51 - [] D -- C:\Program Files\Autodesk
O43 - CFD: 2014/05/03 16:18:29 - [] D -- C:\Program Files\CCleaner
O43 - CFD: 2015/07/26 13:18:19 - [] D -- C:\Program Files\Common Files
O43 - CFD: 2008/09/03 13:09:16 - [] D -- C:\Program Files\CONEXANT
O43 - CFD: 2015/03/24 19:08:11 - [] D -- C:\Program Files\Diebold
O43 - CFD: 2010/01/19 11:20:14 - [] D -- C:\Program Files\DIFX
O43 - CFD: 2009/03/26 15:36:11 - [] D -- C:\Program Files\eMule
O43 - CFD: 2015/07/24 15:47:04 - [] D -- C:\Program Files\ESET
O43 - CFD: 2009/05/10 18:01:57 - [] D -- C:\Program Files\EsetOnlineScanner
O43 - CFD: 2010/01/19 11:19:36 - [] D -- C:\Program Files\Garmin
O43 - CFD: 2010/01/19 11:20:21 - [] D -- C:\Program Files\Garmin GPS Plugin
O43 - CFD: 2015/03/24 19:08:11 - [] HD -- C:\Program Files\GAS Tecnologia
O43 - CFD: 2015/07/26 23:32:39 - [] AD -- C:\Program Files\GbPlugin
O43 - CFD: 2014/09/21 18:00:45 - [] D -- C:\Program Files\Google
O43 - CFD: 2009/06/29 18:24:13 - [] D -- C:\Program Files\GPLGS
O43 - CFD: 2014/05/04 15:23:36 - [] D -- C:\Program Files\HP
O43 - CFD: 2011/04/25 20:15:37 - [] HD -- C:\Program Files\InstallJammer Registry
O43 - CFD: 2012/06/14 14:55:01 - [] HD -- C:\Program Files\InstallShield Installation Information
O43 - CFD: 2008/09/03 13:03:42 - [] D -- C:\Program Files\Intel
O43 - CFD: 2015/07/15 09:59:05 - [] D -- C:\Program Files\Internet Explorer
O43 - CFD: 2008/09/03 13:57:50 - [] D -- C:\Program Files\IPv6Patch
O43 - CFD: 2012/03/11 14:24:39 - [] D -- C:\Program Files\Java
O43 - CFD: 2015/06/19 16:34:17 - [] D -- C:\Program Files\Join Air
O43 - CFD: 2009/07/06 15:36:37 - [] D -- C:\Program Files\Jubler
O43 - CFD: 2011/07/24 15:43:28 - [] D -- C:\Program Files\K-Lite Codec Pack
O43 - CFD: 2015/04/21 11:17:31 - [] D -- C:\Program Files\Last.fm
O43 - CFD: 2015/07/27 00:26:49 - [] D -- C:\Program Files\Litecoin
O43 - CFD: 2015/07/25 21:05:40 - [] D -- C:\Program Files\Malwarebytes Anti-Malware
O43 - CFD: 2015/04/12 00:30:34 - [] D -- C:\Program Files\MCShield
O43 - CFD: 2010/03/12 11:56:04 - [] D -- C:\Program Files\Messenger Plus! Live
O43 - CFD: 2012/07/08 15:10:49 - [] D -- C:\Program Files\Microsoft
O43 - CFD: 2006/11/02 09:35:51 - [] D -- C:\Program Files\Microsoft Games
O43 - CFD: 2009/09/26 13:48:56 - [] D -- C:\Program Files\Microsoft Office
O43 - CFD: 2008/10/03 14:21:46 - [] D -- C:\Program Files\Microsoft Office Suite Activation Assistant
O43 - CFD: 2015/05/13 03:43:47 - [] D -- C:\Program Files\Microsoft Silverlight
O43 - CFD: 2009/03/18 18:07:08 - [] D -- C:\Program Files\Microsoft SQL Server Compact Edition
O43 - CFD: 2012/10/11 13:14:48 - [] D -- C:\Program Files\Microsoft Works
O43 - CFD: 2011/02/22 11:15:42 - [] D -- C:\Program Files\Microsoft.NET
O43 - CFD: 2010/08/13 12:47:32 - [] D -- C:\Program Files\Movie Maker
O43 - CFD: 2015/07/07 09:40:18 - [] D -- C:\Program Files\Mozilla Firefox
O43 - CFD: 2015/07/07 09:40:18 - [] D -- C:\Program Files\Mozilla Maintenance Service
O43 - CFD: 2011/11/05 20:53:01 - [] D -- C:\Program Files\MP3 WAV Converter
O43 - CFD: 2006/11/02 09:35:51 - [] D -- C:\Program Files\MSBuild
O43 - CFD: 2009/05/02 22:40:57 - [] D -- C:\Program Files\MSECache
O43 - CFD: 2013/07/13 14:29:55 - [] D -- C:\Program Files\MultiBit-0.5.12
O43 - CFD: 2015/07/08 15:56:54 - [] D -- C:\Program Files\MultiDoge-0.1.2
O43 - CFD: 2015/07/08 15:54:12 - [] D -- C:\Program Files\MultiDoge-0.1.4
O43 - CFD: 2011/05/20 17:20:52 - [] D -- C:\Program Files\MyDefrag v4.3.1
O43 - CFD: 2008/10/03 14:43:18 - [] D -- C:\Program Files\OCA Marker
O43 - CFD: 2012/07/10 18:04:39 - [] D -- C:\Program Files\Oi
O43 - CFD: 2008/09/03 13:07:27 - [] D -- C:\Program Files\Realtek
O43 - CFD: 2015/06/07 12:23:10 - [] D -- C:\Program Files\Recuva
O43 - CFD: 2006/11/02 09:35:51 - [] D -- C:\Program Files\Reference Assemblies
O43 - CFD: 2012/05/26 12:05:06 - [] D -- C:\Program Files\Research In Motion
O43 - CFD: 2015/04/14 23:25:38 - [] RD -- C:\Program Files\Skype
O43 - CFD: 2011/11/05 20:38:36 - [] D -- C:\Program Files\Smart MP3 Converter
O43 - CFD: 2008/10/03 15:11:03 - [] D -- C:\Program Files\Sony
O43 - CFD: 2012/06/14 14:55:27 - [] D -- C:\Program Files\SupportAppCB
O43 - CFD: 2008/09/03 13:10:06 - [] D -- C:\Program Files\Synaptics
O43 - CFD: 2006/11/02 09:58:18 - [0] HD -- C:\Program Files\Uninstall Information
O43 - CFD: 2014/09/14 17:49:49 - [] D -- C:\Program Files\uTorrent
O43 - CFD: 2013/01/11 14:22:18 - [] D -- C:\Program Files\VideoLAN
O43 - CFD: 2009/10/17 16:41:32 - [] D -- C:\Program Files\Windows Calendar
O43 - CFD: 2009/10/17 16:41:31 - [] D -- C:\Program Files\Windows Collaboration
O43 - CFD: 2009/10/17 16:41:29 - [] D -- C:\Program Files\Windows Defender
O43 - CFD: 2012/06/22 13:26:37 - [] D -- C:\Program Files\Windows Live
O43 - CFD: 2012/04/10 23:42:53 - [] D -- C:\Program Files\Windows Mail
O43 - CFD: 2015/06/10 03:27:11 - [] D -- C:\Program Files\Windows Media Player
O43 - CFD: 2009/03/14 23:42:06 - [] D -- C:\Program Files\Windows NT
O43 - CFD: 2009/10/17 16:41:31 - [] D -- C:\Program Files\Windows Photo Gallery
O43 - CFD: 2009/11/17 18:01:28 - [] D -- C:\Program Files\Windows Portable Devices
O43 - CFD: 2009/10/17 16:41:32 - [] D -- C:\Program Files\Windows Sidebar
O43 - CFD: 2009/03/15 16:02:17 - [] D -- C:\Program Files\WinRAR
O43 - CFD: 2015/04/25 16:33:06 - [] D -- C:\Program Files\XP PRO
O43 - CFD: 2011/02/24 20:53:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2011/02/24 20:53:11 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2008/10/03 14:54:01 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Magic-i Visual Effects
O43 - CFD: 2008/10/03 15:05:12 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft WebCam Companion 2
O43 - CFD: 2009/09/26 13:49:05 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
O43 - CFD: 2011/03/31 23:10:44 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
O43 - CFD: 2008/10/03 14:14:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centro de Recuperação VAIO
O43 - CFD: 2009/06/29 18:17:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CutePDF
O43 - CFD: 2010/06/12 23:36:07 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
O43 - CFD: 2009/03/26 15:36:11 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule
O43 - CFD: 2008/01/20 23:56:27 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Extras and Upgrades
O43 - CFD: 2012/07/08 15:19:18 - [0] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ferramentas DTS
O43 - CFD: 2008/01/20 23:56:31 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
O43 - CFD: 2012/06/14 14:55:27 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Join Air
O43 - CFD: 2009/07/06 15:36:37 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Jubler
O43 - CFD: 2006/11/02 09:52:53 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2015/07/25 21:05:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
O43 - CFD: 2015/04/12 00:30:35 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MCShield
O43 - CFD: 2010/11/22 15:30:07 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
O43 - CFD: 2010/06/03 13:49:30 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
O43 - CFD: 2015/05/13 03:07:13 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
O43 - CFD: 2012/10/11 13:14:48 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Works
O43 - CFD: 2013/07/13 14:29:52 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MultiBit
O43 - CFD: 2015/07/08 15:56:54 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MultiDoge
O43 - CFD: 2010/11/23 12:54:08 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyDefrag v4.3.1
O43 - CFD: 2012/07/10 18:04:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oi
O43 - CFD: 2013/11/26 18:42:15 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
O43 - CFD: 2008/10/03 14:59:49 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Roxio Easy Media Creator 10 LJ
O43 - CFD: 2015/04/14 23:25:39 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
O43 - CFD: 2008/10/03 14:50:10 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony Picture Utility
O43 - CFD: 2014/05/04 10:28:59 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2008/10/03 15:10:40 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Edit Components 6
O43 - CFD: 2008/10/03 15:04:47 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Update 4
O43 - CFD: 2008/10/03 14:53:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VAIO Video & Photo Suite
O43 - CFD: 2012/06/22 13:28:41 - [] RD -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
O43 - CFD: 2009/03/15 16:02:17 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
O43 - CFD: 2015/04/25 16:22:29 - [] D -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XP PRO
O43 - CFD: 2014/09/11 20:28:07 - [] D -- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
O43 - CFD: 2014/09/26 16:47:05 - [] D -- C:\ProgramData\Adobe
O43 - CFD: 2013/11/03 16:43:42 - [] D -- C:\ProgramData\Apple
O43 - CFD: 2014/09/11 20:28:07 - [] D -- C:\ProgramData\Apple Computer
O43 - CFD: 2006/11/02 09:59:44 - [0] SHD -- C:\ProgramData\Application Data
O43 - CFD: 2009/09/26 13:54:26 - [] D -- C:\ProgramData\Autodesk
O43 - CFD: 2014/09/23 17:04:37 - [] D -- C:\ProgramData\Avira
O43 - CFD: 2015/03/24 19:37:11 - [] D -- C:\ProgramData\boost_interprocess
O43 - CFD: 2012/04/19 22:04:24 - [] HD -- C:\ProgramData\Common Files
O43 - CFD: 2009/03/14 23:42:06 - [0] SHD -- C:\ProgramData\Dados de aplicativos
O43 - CFD: 2006/11/02 09:59:44 - [0] SHD -- C:\ProgramData\Desktop
O43 - CFD: 2009/03/14 23:42:06 - [0] SHD -- C:\ProgramData\Documentos
O43 - CFD: 2006/11/02 09:59:44 - [0] SHD -- C:\ProgramData\Documents
O43 - CFD: 2009/03/26 15:36:39 - [] D -- C:\ProgramData\eMule
O43 - CFD: 2006/11/02 09:59:44 - [0] SHD -- C:\ProgramData\Favorites
O43 - CFD: 2009/03/14 23:42:06 - [0] SHD -- C:\ProgramData\Favoritos
O43 - CFD: 2009/03/14 23:52:10 - [] D -- C:\ProgramData\FLEXnet
O43 - CFD: 2015/07/10 15:53:31 - [] D -- C:\ProgramData\GAS Tecnologia
O43 - CFD: 2015/07/27 00:25:51 - [] D -- C:\ProgramData\GbPlugin
O43 - CFD: 2009/03/29 17:20:31 - [] D -- C:\ProgramData\Hewlett-Packard
O43 - CFD: 2014/05/04 10:54:45 - [] D -- C:\ProgramData\HP
O43 - CFD: 2013/01/17 12:52:17 - [] D -- C:\ProgramData\Last.fm
O43 - CFD: 2012/12/04 14:38:19 - [] D -- C:\ProgramData\Lightcomm
O43 - CFD: 2015/07/26 09:24:18 - [] D -- C:\ProgramData\Malwarebytes
O43 - CFD: 2009/10/19 18:56:00 - [] D -- C:\ProgramData\McAfee
O43 - CFD: 2015/07/27 19:31:04 - [] D -- C:\ProgramData\MCShield
O43 - CFD: 2009/03/14 23:42:06 - [0] SHD -- C:\ProgramData\Menu Iniciar
O43 - CFD: 2010/04/23 11:44:32 - [] D -- C:\ProgramData\Messenger Plus!
O43 - CFD: 2014/02/25 23:41:34 - [] SD -- C:\ProgramData\Microsoft
O43 - CFD: 2015/07/15 09:44:00 - [] D -- C:\ProgramData\Microsoft Help
O43 - CFD: 2009/03/14 23:42:06 - [0] SHD -- C:\ProgramData\Modelos
O43 - CFD: 2012/05/07 23:28:12 - [] D -- C:\ProgramData\Mozilla
O43 - CFD: 2012/07/10 17:48:33 - [] D -- C:\ProgramData\Oi
O43 - CFD: 2011/03/18 21:43:42 - [] D -- C:\ProgramData\PC Tools
O43 - CFD: 2015/04/14 23:25:28 - [] D -- C:\ProgramData\Skype
O43 - CFD: 2008/10/03 15:00:33 - [] D -- C:\ProgramData\Sonic
O43 - CFD: 2009/04/06 18:57:19 - [] D -- C:\ProgramData\Sony Corporation
O43 - CFD: 2006/11/02 09:59:44 - [0] SHD -- C:\ProgramData\Start Menu
O43 - CFD: 2010/08/13 13:03:59 - [] D -- C:\ProgramData\Sun
O43 - CFD: 2015/03/24 19:33:29 - [] AD -- C:\ProgramData\Temp
O43 - CFD: 2006/11/02 09:59:44 - [0] SHD -- C:\ProgramData\Templates
O43 - CFD: 2008/10/03 15:00:37 - [] D -- C:\ProgramData\Uninstall
O43 - CFD: 2009/03/29 18:03:59 - [] D -- C:\ProgramData\WEBREG
O43 - CFD: 2009/04/15 23:29:27 - [] D -- C:\ProgramData\WindowsSearch
O43 - CFD: 2009/09/04 23:11:56 - [] D -- C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
O43 - CFD: 2014/09/26 16:47:01 - [] D -- C:\Program Files\Common Files\Adobe
O43 - CFD: 2008/10/03 15:05:02 - [] D -- C:\Program Files\Common Files\ArcSoft
O43 - CFD: 2009/09/26 13:50:12 - [] D -- C:\Program Files\Common Files\Autodesk Shared
O43 - CFD: 2014/05/15 23:07:47 - [] D -- C:\Program Files\Common Files\DESIGNER
O43 - CFD: 2009/03/29 17:54:02 - [] D -- C:\Program Files\Common Files\Hewlett-Packard
O43 - CFD: 2009/03/29 17:54:38 - [] D -- C:\Program Files\Common Files\HP
O43 - CFD: 2008/10/03 14:53:50 - [] D -- C:\Program Files\Common Files\InstallShield
O43 - CFD: 2012/03/11 14:47:19 - [] D -- C:\Program Files\Common Files\Java
O43 - CFD: 2008/10/03 14:30:41 - [] D -- C:\Program Files\Common Files\Macrovision Shared
O43 - CFD: 2014/09/15 16:32:26 - [] D -- C:\Program Files\Common Files\Microsoft
O43 - CFD: 2012/06/22 13:22:47 - [] D -- C:\Program Files\Common Files\microsoft shared
O43 - CFD: 2011/03/18 21:44:34 - [] D -- C:\Program Files\Common Files\PC Tools
O43 - CFD: 2015/04/05 18:56:36 - [] D -- C:\Program Files\Common Files\PX Storage Engine
O43 - CFD: 2015/04/05 18:46:48 - [] D -- C:\Program Files\Common Files\Research In Motion
O43 - CFD: 2015/04/05 18:56:36 - [] D -- C:\Program Files\Common Files\Roxio Shared
O43 - CFD: 2006/11/02 08:18:33 - [] D -- C:\Program Files\Common Files\Services
O43 - CFD: 2009/03/14 23:42:06 - [0] SHD -- C:\Program Files\Common Files\Sistema
O43 - CFD: 2015/04/14 23:25:38 - [] D -- C:\Program Files\Common Files\Skype
O43 - CFD: 2008/10/03 14:59:48 - [] D -- C:\Program Files\Common Files\Sonic Shared
O43 - CFD: 2008/10/03 15:03:37 - [] D -- C:\Program Files\Common Files\Sony Shared
O43 - CFD: 2006/11/02 08:18:33 - [] D -- C:\Program Files\Common Files\SpeechEngines
O43 - CFD: 2011/11/09 22:51:51 - [] D -- C:\Program Files\Common Files\System
O43 - CFD: 2009/03/18 16:20:21 - [] D -- C:\Program Files\Common Files\Windows Live
O43 - CFD: 2009/04/05 11:47:54 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Adobe
O43 - CFD: 2013/11/03 16:52:52 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Apple Computer
O43 - CFD: 2009/03/26 14:56:09 - [] D -- C:\Users\ISAIAS\AppData\Roaming\ArcSoft
O43 - CFD: 2011/11/05 20:33:03 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Audacity
O43 - CFD: 2009/09/26 13:56:51 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Autodesk
O43 - CFD: 2014/08/16 16:37:36 - [] D -- C:\Users\ISAIAS\AppData\Roaming\BlueSprig
O43 - CFD: 2014/12/01 18:53:11 - [] D -- C:\Users\ISAIAS\AppData\Roaming\dvdcss
O43 - CFD: 2009/03/18 16:16:22 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Google
O43 - CFD: 2009/04/15 20:43:56 - [] D -- C:\Users\ISAIAS\AppData\Roaming\HP
O43 - CFD: 2009/03/14 23:45:42 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Identities
O43 - CFD: 2009/03/31 15:40:49 - [] D -- C:\Users\ISAIAS\AppData\Roaming\InterVideo
O43 - CFD: 2009/07/06 15:37:59 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Jubler
O43 - CFD: 2009/06/24 18:37:47 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Kingston
O43 - CFD: 2015/04/01 16:14:44 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Leadertech
O43 - CFD: 2012/12/04 14:36:45 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Lightcomm
O43 - CFD: 2015/07/27 00:43:50 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Litecoin
O43 - CFD: 2009/03/18 15:29:32 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Macromedia
O43 - CFD: 2015/06/02 18:37:54 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Media Player Classic
O43 - CFD: 2012/06/28 15:13:21 - [] SD -- C:\Users\ISAIAS\AppData\Roaming\Microsoft
O43 - CFD: 2010/02/02 12:33:15 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Mozilla
O43 - CFD: 2015/07/26 22:52:53 - [] D -- C:\Users\ISAIAS\AppData\Roaming\MultiBit
O43 - CFD: 2015/07/26 22:52:56 - [] D -- C:\Users\ISAIAS\AppData\Roaming\MultiDoge
O43 - CFD: 2009/05/03 14:17:33 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Orbit
O43 - CFD: 2011/03/18 21:43:42 - [] D -- C:\Users\ISAIAS\AppData\Roaming\PC Tools
O43 - CFD: 2009/05/05 16:30:41 - [] D -- C:\Users\ISAIAS\AppData\Roaming\pschmid.net
O43 - CFD: 2012/05/04 23:05:50 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Real
O43 - CFD: 2009/03/31 15:44:07 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Roxio
O43 - CFD: 2014/01/04 17:42:52 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Skype
O43 - CFD: 2013/11/03 16:15:00 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Sony Corporation
O43 - CFD: 2015/06/04 15:10:16 - [] D -- C:\Users\ISAIAS\AppData\Roaming\tor
O43 - CFD: 2015/07/27 21:47:48 - [] D -- C:\Users\ISAIAS\AppData\Roaming\uTorrent
O43 - CFD: 2015/07/26 18:59:39 - [] D -- C:\Users\ISAIAS\AppData\Roaming\vlc
O43 - CFD: 2015/07/27 21:48:13 - [] D -- C:\Users\ISAIAS\AppData\Roaming\ZHP
O43 - CFD: 2012/03/11 22:48:49 - [] SHD -- C:\Users\ISAIAS\AppData\Local\47df7cd1
O43 - CFD: 2015/07/10 11:57:14 - [] D -- C:\Users\ISAIAS\AppData\Local\Adobe
O43 - CFD: 2009/09/04 23:08:17 - [] D -- C:\Users\ISAIAS\AppData\Local\Apple
O43 - CFD: 2009/11/20 18:56:01 - [] D -- C:\Users\ISAIAS\AppData\Local\Apple Computer
O43 - CFD: 2014/05/25 10:38:53 - [] D -- C:\Users\ISAIAS\AppData\Local\Ares
O43 - CFD: 2009/09/26 13:43:18 - [] D -- C:\Users\ISAIAS\AppData\Local\Autodesk
O43 - CFD: 2014/05/25 10:52:38 - [] D -- C:\Users\ISAIAS\AppData\Local\Comodo =>PUP.Optional
O43 - CFD: 2009/03/14 23:45:28 - [0] SHD -- C:\Users\ISAIAS\AppData\Local\Dados de aplicativos
O43 - CFD: 2010/06/12 23:29:27 - [] D -- C:\Users\ISAIAS\AppData\Local\DOSBox
O43 - CFD: 2014/05/25 10:32:23 - [] D -- C:\Users\ISAIAS\AppData\Local\eMule
O43 - CFD: 2014/03/01 12:02:25 - [] D -- C:\Users\ISAIAS\AppData\Local\GAS Tecnologia
O43 - CFD: 2014/09/21 18:00:05 - [] D -- C:\Users\ISAIAS\AppData\Local\Google
O43 - CFD: 2009/03/14 23:45:28 - [0] SHD -- C:\Users\ISAIAS\AppData\Local\Histórico
O43 - CFD: 2009/04/08 10:03:00 - [] D -- C:\Users\ISAIAS\AppData\Local\HP
O43 - CFD: 2015/07/27 20:42:38 - [] D -- C:\Users\ISAIAS\AppData\Local\Last.fm
O43 - CFD: 2012/06/28 15:13:21 - [] D -- C:\Users\ISAIAS\AppData\Local\Macromedia
O43 - CFD: 2013/11/03 15:48:41 - [] D -- C:\Users\ISAIAS\AppData\Local\Microsoft
O43 - CFD: 2009/11/20 13:51:51 - [] D -- C:\Users\ISAIAS\AppData\Local\Microsoft Games
O43 - CFD: 2009/09/27 20:45:21 - [] D -- C:\Users\ISAIAS\AppData\Local\Microsoft Help
O43 - CFD: 2010/02/02 12:32:52 - [] D -- C:\Users\ISAIAS\AppData\Local\Mozilla
O43 - CFD: 2015/04/05 18:47:12 - [] D -- C:\Users\ISAIAS\AppData\Local\Research In Motion
O43 - CFD: 2015/07/27 21:46:38 - [] D -- C:\Users\ISAIAS\AppData\Local\Temp
O43 - CFD: 2009/03/14 23:45:28 - [0] SHD -- C:\Users\ISAIAS\AppData\Local\Temporary Internet Files
O43 - CFD: 2009/09/05 19:15:48 - [] D -- C:\Users\ISAIAS\AppData\Local\vdownloader
O43 - CFD: 2010/03/11 15:09:07 - [] D -- C:\Users\ISAIAS\AppData\Local\VirtualStore
O43 - CFD: 2013/11/03 16:02:19 - [] D -- C:\Users\ISAIAS\AppData\Local\Windows Live
O43 - CFD: 2009/06/24 17:37:30 - [] D -- C:\Users\ISAIAS\AppData\Local\Windows Live Writer
O43 - CFD: 2008/01/20 23:56:27 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
O43 - CFD: 2009/03/14 23:45:50 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
O43 - CFD: 2015/07/27 00:26:49 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Litecoin
O43 - CFD: 2008/01/20 23:56:27 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
O43 - CFD: 2014/08/16 16:49:22 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
O43 - CFD: 2009/03/15 16:02:17 - [] D -- C:\Users\ISAIAS\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

---\\ Enumeração das chaves do registo StartupReg (SMSR) (O53) (8) - 2s
O53 - SMSR:HKLM\...\startupreg\Adobe ARM [Key] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
O53 - SMSR:HKLM\...\startupreg\Adobe Reader Speed Launcher [Key] . (.Adobe Systems Incorporated - Adobe Acrobat SpeedLauncher.) -- C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
O53 - SMSR:HKLM\...\startupreg\AdobeUpdater [Key] . (.Adobe Systems Incorporated - Adobe Updater.) -- C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
O53 - SMSR:HKLM\...\startupreg\HotKeysCmds [Key] . (.Intel Corporation - hkcmd Module.) -- C:\Windows\System32\hkcmd.exe
O53 - SMSR:HKLM\...\startupreg\ISBMgr.exe [Key] . (.Sony Corporation - .) -- C:\Program Files\Sony\ISB Utility\ISBMgr.exe
O53 - SMSR:HKLM\...\startupreg\RtHDVCpl [Key] . (.Realtek Semiconductor - HD Audio Control Panel.) -- RtHDVCpl.exe (.not file.)
O53 - SMSR:HKLM\...\startupreg\VAIOSurvey [Key] . (...) -- C:\Program Files\Sony\VAIO Survey\VAIO Sat Survey.exe
O53 - SMSR:HKLM\...\startupreg\WMPNSCFG [Key] . (.Microsoft Corporation - Aplicativo de Configuração do Serviço de co.) -- C:\Program Files\Windows Media Player\wmpnscfg.exe

---\\ Lista dos drivers do sistema (SDL) (O58) (102) - 61s
O58 - SDL:2008/01/20 23:32:46 N . (.Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) -- C:\Windows\System32\drivers\adp94xx.sys [422968]
O58 - SDL:2008/01/20 23:32:51 N . (.Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) -- C:\Windows\System32\drivers\adpahci.sys [300600]
O58 - SDL:2008/01/20 23:32:52 N . (.Adaptec, Inc. - Adaptec LH Ultra160 Driver (x86).) -- C:\Windows\System32\drivers\adpu160m.sys [101432]
O58 - SDL:2008/01/20 23:32:53 N . (.Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver.) -- C:\Windows\System32\drivers\adpu320.sys [149560]
O58 - SDL:2008/01/20 23:32:21 N . (.Acer Laboratories Inc. - ALi mini IDE Driver.) -- C:\Windows\System32\drivers\aliide.sys [17464]
O58 - SDL:2008/01/20 23:32:49 N . (.Adaptec, Inc. - Adaptec RAID Storport Driver.) -- C:\Windows\System32\drivers\arc.sys [79416]
O58 - SDL:2008/01/20 23:32:50 N . (.Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) -- C:\Windows\System32\drivers\arcsas.sys [79928]
O58 - SDL:2008/01/30 17:33:28 N . (.ArcSoft, Inc. - .) -- C:\Windows\System32\drivers\ArcSoftKsUFilter.sys [17408]
O58 - SDL:2008/06/09 21:04:47 A . (.Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driv.) -- C:\Windows\System32\drivers\athr.sys [909824]
O58 - SDL:2006/11/02 05:24:45 N . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Lower.) -- C:\Windows\System32\drivers\BrFiltLo.sys [13568]
O58 - SDL:2006/11/02 05:24:46 N . (.Brother Industries, Ltd. - Windows ME USB Mass-Storage Bulk-Only Upper.) -- C:\Windows\System32\drivers\BrFiltUp.sys [5248]
O58 - SDL:2006/11/02 05:25:24 N . (.Brother Industries Ltd. - Brother Serial I/F Driver (WDM).) -- C:\Windows\System32\drivers\BrSerId.sys [71808]
O58 - SDL:2006/11/02 05:24:44 N . (.Brother Industries Ltd. - Brother Serial driver (WDM version).) -- C:\Windows\System32\drivers\BrSerWdm.sys [62336]
O58 - SDL:2006/11/02 05:24:44 N . (.Brother Industries Ltd. - Brother USB MDM Driver.) -- C:\Windows\System32\drivers\BrUsbMdm.sys [12160]
O58 - SDL:2006/11/02 05:24:47 N . (.Brother Industries Ltd. - Brother USB Serial Driver.) -- C:\Windows\System32\drivers\BrUsbSer.sys [11904]
O58 - SDL:2007/02/02 03:00:00 N . (.Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see Px.) -- C:\Windows\System32\drivers\cdr4_xp.sys [9336]
O58 - SDL:2007/02/02 03:00:00 N . (.Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) -- C:\Windows\System32\drivers\cdralw2k.sys [9464]
O58 - SDL:2008/01/20 23:32:21 N . (.CMD Technology, Inc. - CMD PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\cmdide.sys [19000]
O58 - SDL:2006/11/02 06:50:11 N . (.Adaptec, Inc. - Adaptec Ultra SCSI miniport.) -- C:\Windows\System32\drivers\djsvs.sys [71272]
O58 - SDL:2008/07/11 16:42:58 N . (.Sony Corporation - Windows 2000 DMI Call Kernel Driver.) -- C:\Windows\System32\drivers\DMICall.sys [10216]
O58 - SDL:2008/01/20 23:32:50 A . (.Intel Corporation - Intel(R) PRO/1000 Adapter NDIS 6 deserializ.) -- C:\Windows\System32\drivers\E1G60I32.sys [118784]
O58 - SDL:2008/01/20 23:32:48 N . (.Emulex - Storport Miniport Driver for LightPulse HBA.) -- C:\Windows\System32\drivers\elxstor.sys [342584]
O58 - SDL:2015/04/30 09:20:14 A . (.GAS Tecnologia - GbPlugin Device Driver.) -- C:\Windows\System32\drivers\gbpkm.sys [46552]
O58 - SDL:2008/01/20 23:32:52 N . (.Hewlett-Packard Company - Smart Array Storport Driver.) -- C:\Windows\System32\drivers\HpCISSs.sys [40504]
O58 - SDL:2008/01/24 23:14:12 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\drivers\HSXHWAZL.sys [207360]
O58 - SDL:2008/01/24 23:14:12 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\HSX_CNXT.sys [659968]
O58 - SDL:2008/01/24 23:14:16 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\HSX_DPV.sys [985600]
O58 - SDL:2008/04/21 21:20:41 A . (.Intel Corporation - Intel Matrix Storage Manager driver - ia32.) -- C:\Windows\System32\drivers\iaStor.sys [312344]
O58 - SDL:2008/01/20 23:32:49 N . (.Intel Corporation - Intel Matrix Storage Manager driver (base).) -- C:\Windows\System32\drivers\iaStorV.sys [235064]
O58 - SDL:2008/07/04 00:02:38 A . (.Intel Corporation - Intel Graphics Kernel Mode Driver.) -- C:\Windows\System32\drivers\igdkmd32.sys [2377216]
O58 - SDL:2006/11/02 06:50:17 N . (.Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) -- C:\Windows\System32\drivers\iirsp.sys [41576]
O58 - SDL:2006/11/02 06:50:07 N . (.Integrated Technology Express, Inc. - ITE IT8211 ATA/ATAPI SCSI miniport.) -- C:\Windows\System32\drivers\iteatapi.sys [35944]
O58 - SDL:2006/11/02 06:50:09 N . (.Integrated Technology Express, Inc. - ITE IT8212 ATA RAID SCSI miniport.) -- C:\Windows\System32\drivers\iteraid.sys [35944]
O58 - SDL:2008/01/20 23:32:49 N . (.LSI Logic - LSI Logic Fusion-MPT FC Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_fc.sys [96312]
O58 - SDL:2008/01/20 23:32:51 N . (.LSI Logic - LSI Logic Fusion-MPT SAS Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_sas.sys [89656]
O58 - SDL:2008/01/20 23:32:48 A . (.LSI Logic - LSI Logic Fusion-MPT SCSI Driver (StorPort).) -- C:\Windows\System32\drivers\lsi_scsi.sys [96312]
O58 - SDL:2015/06/18 08:41:36 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\mbam.sys [23256]
O58 - SDL:2015/06/18 08:41:42 A . (.Malwarebytes Corporation - Malwarebytes Chameleon Protection Driver.) -- C:\Windows\System32\drivers\mbamchameleon.sys [94936]
O58 - SDL:2015/07/26 09:15:57 A . (.Malwarebytes Corporation - Malwarebytes Anti-Malware.) -- C:\Windows\System32\drivers\MBAMSwissArmy.sys [98520]
O58 - SDL:2008/01/24 23:14:16 N . (.Conexant - Diagnostic Interface x86 Driver.) -- C:\Windows\System32\drivers\mdmxsdk.sys [12672]
O58 - SDL:2008/01/20 23:32:53 N . (.LSI Corporation - MEGASAS RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\megasas.sys [31288]
O58 - SDL:2008/01/20 23:32:52 N . (.LSI Corporation, Inc. - LSI MegaRAID Software RAID Driver.) -- C:\Windows\System32\drivers\MegaSR.sys [386616]
O58 - SDL:2006/11/02 06:49:59 N . (.LSI Logic Corporation - MegaRAID RAID Controller Driver for Windows.) -- C:\Windows\System32\drivers\Mraid35x.sys [33384]
O58 - SDL:2015/06/18 08:41:50 A . (.Malwarebytes Corporation - Malwarebytes Web Access Control.) -- C:\Windows\System32\drivers\mwac.sys [51928]
O58 - SDL:2006/11/02 06:50:19 N . (.IBM Corporation - IBM ServeRAID Controller Driver.) -- C:\Windows\System32\drivers\nfrd960.sys [45160]
O58 - SDL:2006/11/02 04:36:50 N . (.N-trig Innovative Technologies - Driver nativo digitalizador de tablet N-tri.) -- C:\Windows\System32\drivers\ntrigdigi.sys [20608]
O58 - SDL:2008/01/20 23:32:47 N . (.NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) -- C:\Windows\System32\drivers\nvraid.sys [102968]
O58 - SDL:2008/01/20 23:32:47 N . (.NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) -- C:\Windows\System32\drivers\nvstor.sys [45112]
O58 - SDL:2008/12/18 12:16:56 N . (.PC Tools - PC Tools App Monitor Driver.) -- C:\Windows\System32\drivers\PCTAppEvent.sys [73840]
O58 - SDL:2009/04/03 11:18:26 N . (.PC Tools - PC Tools KDS Core Driver.) -- C:\Windows\System32\drivers\PCTCore.sys [130936]
O58 - SDL:2008/12/11 08:38:22 N . (.PC Tools - PC Tools Generic TDI Driver.) -- C:\Windows\System32\drivers\pctgntdi.sys [159600]
O58 - SDL:2008/12/10 11:36:04 N . (.PC Tools - PC Tools SG Plugin Driver.) -- C:\Windows\System32\drivers\pctplsg.sys [64392]
O58 - SDL:2012/03/12 02:39:09 N . (.Sysinternals - www.sysinternals.com - Process Explorer.) -- C:\Windows\System32\drivers\PROCEXP113.SYS [12568]
O58 - SDL:2008/04/08 03:00:00 N . (.Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) -- C:\Windows\System32\drivers\pxhelp20.sys [44944]
O58 - SDL:2008/01/20 23:32:50 N . (.QLogic Corporation - QLogic Fibre Channel Stor Miniport Driver.) -- C:\Windows\System32\drivers\ql2300.sys [1122360]
O58 - SDL:2006/11/02 06:50:35 N . (.QLogic Corporation - QLogic iSCSI Storport Miniport Driver.) -- C:\Windows\System32\drivers\ql40xx.sys [106088]
O58 - SDL:2011/07/20 15:13:16 N . (.Research in Motion Ltd - RIM Virtual Serial Driver.) -- C:\Windows\System32\drivers\RimSerial.sys [35328]
O58 - SDL:2008/06/27 21:33:45 A . (.REDC - RICOH MS Driver.) -- C:\Windows\System32\drivers\rimsptsk.sys [68608]
O58 - SDL:2008/06/20 21:03:04 A . (.REDC - RICOH SD/MMC Driver.) -- C:\Windows\System32\drivers\risdptsk.sys [46592]
O58 - SDL:2008/07/03 03:06:02 A . (.Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function D.) -- C:\Windows\System32\drivers\RTKVHDA.sys [2149912]
O58 - SDL:2007/11/02 10:47:38 A . (.MCCI Corporation - Sony Ericsson Device 916 Driver.) -- C:\Windows\System32\drivers\s916bus.sys [83496]
O58 - SDL:2007/11/02 10:47:38 N . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s916cm.sys [12200]
O58 - SDL:2007/11/02 10:47:38 N . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s916cmnt.sys [12200]
O58 - SDL:2007/11/02 10:47:38 N . (.MCCI Corporation - Sony Ericsson Device 916 USB WMC MODEM Filt.) -- C:\Windows\System32\drivers\s916mdfl.sys [15016]
O58 - SDL:2007/11/02 10:47:38 A . (.MCCI Corporation - Sony Ericsson Device 916 USB WMC Modem WDM.) -- C:\Windows\System32\drivers\s916mdm.sys [109992]
O58 - SDL:2007/11/02 10:47:38 N . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s916wh.sys [12200]
O58 - SDL:2007/11/02 10:47:38 N . (.MCCI Corporation - Windows 2000/XP support functions.) -- C:\Windows\System32\drivers\s916whnt.sys [12200]
O58 - SDL:2006/11/02 03:37:21 N . (.Macrovision Corporation, Macrovision Europe Limited, - Macrovision SECURITY Driver.) -- C:\Windows\System32\drivers\secdrv.sys [20480]
O58 - SDL:2008/03/10 08:01:26 N . (.Sony Corporation - Sony Firmware Extension Parser driver.) -- C:\Windows\System32\drivers\SFEP.sys [9344]
O58 - SDL:2008/01/20 23:32:52 N . (.Silicon Integrated Systems - SiS AHCI Stor-Miniport Driver.) -- C:\Windows\System32\drivers\sisraid4.sys [74808]
O58 - SDL:2006/11/02 06:50:05 N . (.LSI Logic - LSI Logic 8XX SCSI Miniport Driver.) -- C:\Windows\System32\drivers\symc8xx.sys [35944]
O58 - SDL:2006/11/02 06:49:56 N . (.LSI Logic - LSI Logic Hi-Perf SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_hi.sys [31848]
O58 - SDL:2006/11/02 06:50:03 N . (.LSI Logic - LSI Logic Ultra160 SCSI Miniport Driver.) -- C:\Windows\System32\drivers\sym_u3.sys [34920]
O58 - SDL:2007/03/09 23:42:50 A . (.Synaptics, Inc. - Synaptics Touchpad Driver.) -- C:\Windows\System32\drivers\SynTP.sys [181560]
O58 - SDL:2008/01/20 23:32:45 N . (.ULi Electronics Inc. - ULi SATA Controller Driver.) -- C:\Windows\System32\drivers\uliahci.sys [238648]
O58 - SDL:2006/11/02 06:50:35 N . (.Promise Technology, Inc. - Promise Ultra/Sata Series Driver for Win200.) -- C:\Windows\System32\drivers\ulsata.sys [98408]
O58 - SDL:2008/01/20 23:32:49 N . (.Promise Technology, Inc. - Promise SATAII150 Series Windows Drivers.) -- C:\Windows\System32\drivers\ulsata2.sys [115816]
O58 - SDL:2008/01/20 23:32:21 N . (.VIA Technologies, Inc. - VIA Generic PCI IDE Bus Driver.) -- C:\Windows\System32\drivers\viaide.sys [20024]
O58 - SDL:2008/01/20 23:32:49 N . (.VIA Technologies Inc.,Ltd - VIA RAID DRIVER FOR AMD-X86-64.) -- C:\Windows\System32\drivers\vsmraid.sys [130616]
O58 - SDL:2008/01/20 23:32:48 A . (.Conexant Systems, Inc. - HSF_HWAZL WDM driver.) -- C:\Windows\System32\drivers\VSTAZL3.SYS [200704]
O58 - SDL:2008/01/20 23:32:48 A . (.Conexant Systems, Inc. - HSF_CNXT driver.) -- C:\Windows\System32\drivers\VSTCNXT3.SYS [654336]
O58 - SDL:2008/01/20 23:32:48 A . (.Conexant Systems, Inc. - HSF_DP driver.) -- C:\Windows\System32\drivers\VSTDPV3.SYS [987648]
O58 - SDL:2008/01/24 23:14:25 N . (.Conexant Systems, Inc. - Modem Audio Device Driver.) -- C:\Windows\System32\drivers\XAudio.sys [8192]
O58 - SDL:2008/05/27 21:07:16 A . (.Marvell - Miniport Driver for Marvell Yukon Ethernet.) -- C:\Windows\System32\drivers\yk60x86.sys [310272]
O58 - SDL:2011/09/17 14:41:52 N . (.ZTE - CDC ACM and OBEX Class Driver.) -- C:\Windows\System32\drivers\zte_cdc_acm.sys [67968]
O58 - SDL:2011/09/17 14:41:52 N . (.ZTE - Configuration Policy Driver.) -- C:\Windows\System32\drivers\zte_cpo.sys [9984]
O58 - SDL:2006/11/02 04:09:42 A . (...) -- C:\Windows\System32\ANSI.SYS [9029]
O58 - SDL:2006/11/02 04:09:45 A . (...) -- C:\Windows\System32\country.sys [27097]
O58 - SDL:2006/11/02 04:09:41 A . (...) -- C:\Windows\System32\HIMEM.SYS [4768]
O58 - SDL:2006/11/02 04:09:44 A . (...) -- C:\Windows\System32\KEY01.SYS [42809]
O58 - SDL:2006/11/02 04:09:44 A . (...) -- C:\Windows\System32\KEYBOARD.SYS [42537]
O58 - SDL:2006/11/02 04:09:29 A . (...) -- C:\Windows\System32\NTDOS.SYS [27866]
O58 - SDL:2006/11/02 04:09:35 A . (...) -- C:\Windows\System32\NTDOS404.SYS [29146]
O58 - SDL:2006/11/02 04:09:38 A . (...) -- C:\Windows\System32\NTDOS411.SYS [29370]
O58 - SDL:2006/11/02 04:09:40 A . (...) -- C:\Windows\System32\NTDOS412.SYS [29274]
O58 - SDL:2006/11/02 04:09:31 A . (...) -- C:\Windows\System32\NTDOS804.SYS [29146]
O58 - SDL:2006/11/02 04:09:20 A . (...) -- C:\Windows\System32\NTIO.SYS [33952]
O58 - SDL:2006/11/02 04:09:23 A . (...) -- C:\Windows\System32\NTIO404.SYS [34672]
O58 - SDL:2006/11/02 04:09:24 A . (...) -- C:\Windows\System32\NTIO411.SYS [35776]
O58 - SDL:2006/11/02 04:09:26 A . (...) -- C:\Windows\System32\NTIO412.SYS [35536]
O58 - SDL:2006/11/02 04:09:22 A . (...) -- C:\Windows\System32\NTIO804.SYS [34672]
O58 - SDL:2015/02/13 15:47:22 N . (.Basil's Projects - WinDivert network packet capture and (re)in.) -- C:\Windows\System32\WinDivert32.sys [30936]

---\\ Últimos ficheiros alterados ou criados (Utilizador) (061) (3) - 44s
O61 - LFC: 2015/07/24 15:46:39 A . (.ESET.) -- C:\Users\ISAIAS\Downloads\esetsmartinstaller_enu.exe [2870984]
O61 - LFC: 2015/07/26 23:03:46 A . (.Litecoin Core project.) -- C:\Users\ISAIAS\Downloads\litecoin-0.10.2.2-win32-setup.exe [11884266]
O61 - LFC: 2015/07/26 11:47:19 A . (..) -- C:\Users\ISAIAS\Desktop\zoek.exe [1308672]

---\\ Associações Shell Spawning (O67) (1) - 0s
O67 - Shell Spawning: <.evt> [HKLM\..\open\Command] (.Microsoft Corporation - Iniciador do snap-in de 'Visualizar eventos.) -- C:\Windows\System32\eventvwr.exe

---\\ Menu de inicialização Internet (068) (12) - 1s
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\program files\Internet Explorer\iexplore.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ShowIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\ReinstallCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Mozilla Corporation - Firefox Helper.) -- C:\Program Files\Mozilla Firefox\uninstall\helper.exe
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (...) -- C:\Program Files\Google\Chrome\Application\chrome.exe (.not file.)
O68 - StartMenuInternet: [HKLM\..\InstallInfo\HideIconsCommand] (.Microsoft Corporation - Utilitário de Inicialização por Usuário do.) -- C:\Windows\System32\ie4uinit.exe

---\\ Pesquisa de infeção nos navegadores da Internet (SBI) (069) (3) - 16s
O69 - SBI: SearchScopes [HKCU] {012E1000-F331-11DB-8314-0800200C9A66} - (Google) - http://www.google.com/
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com/
O69 - SBI: SearchScopes [HKCU] {67C334C0-408D-4E6D-B5A7-0ADD6AFFA252} [DefaultScope] - (Google) - http://www.google.com/

---\\ Listagem dos serviços iniciados pelo Svchost (SSS) (O83) (31) - 3s
O83 - Search Svchost Services: AeLookupSvc (AeLookupSvc) . (.Microsoft Corporation - Serviço de Experiência com Aplicativo.) -- C:\Windows\System32\aelupsvc.dll [24576]
O83 - Search Svchost Services: wercplsupport (wercplsupport) . (.Microsoft Corporation - Relatórios de Problemas e Soluções.) -- C:\Windows\System32\wercplsupport.dll [62976]
O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: CertPropSvc (CertPropSvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [40448]
O83 - Search Svchost Services: SCPolicySvc (SCPolicySvc) . (.Microsoft Corporation - Serviço de Propagação de Certificado de Car.) -- C:\Windows\System32\certprop.dll [40448]
O83 - Search Svchost Services: lanmanserver (lanmanserver) . (.Microsoft Corporation - DLL de Serviço do Servidor.) -- C:\Windows\System32\srvsvc.dll [125952]
O83 - Search Svchost Services: gpsvc (gpsvc) . (.Microsoft Corporation - Cliente da Diretiva de Grupo.) -- C:\Windows\System32\gpsvc.dll [576512]
O83 - Search Svchost Services: IKEEXT (IKEEXT) . (.Microsoft Corporation - Extensão IKE.) -- C:\Windows\System32\IKEEXT.DLL [444928]
O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Serviço de Áudio do Windows.) -- C:\Windows\System32\audiosrv.dll [316928]
O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Gerenciador de Discagem Automática de Acess.) -- C:\Windows\System32\rasauto.dll [90624]
O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Gerenciador de conexão de acesso remoto.) -- C:\Windows\System32\rasmans.dll [262144]
O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Gerenciador de Interface Dinâmica.) -- C:\Windows\System32\mprdim.dll [68608]
O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - Serviço de Notificação de Eventos do Sistem.) -- C:\Windows\System32\Sens.dll [47104]
O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Componentes do Microsoft NAT Helper.) -- C:\Windows\System32\ipnathlp.dll [288256]
O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Servidor de telefonia do Microsoft(R) Windo.) -- C:\Windows\System32\tapisrv.dll [242688]
O83 - Search Svchost Services: TermService (TermService) . (.Microsoft Corporation - Gerenciador de conexões remotas do Terminal.) -- C:\Windows\System32\termsrv.dll [449536]
O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update Agent.) -- C:\Windows\System32\wuaueng.dll [1933848]
O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Serviço de transferência inteligente de pla.) -- C:\Windows\System32\qmgr.dll [758784]
O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - DLL de serviços do Shell do Windows.) -- C:\Windows\System32\shsvcs.dll [247808]
O83 - Search Svchost Services: iphlpsvc (iphlpsvc) . (.Microsoft Corporation - Serviço que oferece conectividade IPv6 em u.) -- C:\Windows\System32\iphlpsvc.dll [200704]
O83 - Search Svchost Services: seclogon (seclogon) . (.Microsoft Corporation - DLL de serviço de logon secundário.) -- C:\Windows\System32\seclogon.dll [19968]
O83 - Search Svchost Services: AppInfo (AppInfo) . (.Microsoft Corporation - Serviço de Informações de Aplicativos.) -- C:\Windows\System32\appinfo.dll [33280]
O83 - Search Svchost Services: msiscsi (msiscsi) . (.Microsoft Corporation - Serviço de Descoberta iSCSI.) -- C:\Windows\System32\iscsiexe.dll [111616]
O83 - Search Svchost Services: MMCSS (MMCSS) . (.Microsoft Corporation - Serviço Agendador de Classes de Multimídia.) -- C:\Windows\System32\mmcss.dll [45056]
O83 - Search Svchost Services: ProfSvc (ProfSvc) . (.Microsoft Corporation - ProfSvc.) -- C:\Windows\System32\profsvc.dll [153600]
O83 - Search Svchost Services: EapHost (EapHost) . (.Microsoft Corporation - Serviço Microsoft EAPHost.) -- C:\Windows\System32\eapsvc.dll [57344]
O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\Windows\System32\wbem\WMIsvc.dll [162304]
O83 - Search Svchost Services: schedule (schedule) . (.Microsoft Corporation - Serviço Agendador de Tarefas.) -- C:\Windows\System32\schedsvc.dll [601600]
O83 - Search Svchost Services: SessionEnv (SessionEnv) . (.Microsoft Corporation - Serviço de Configuração dos Serviços de Ter.) -- C:\Windows\System32\SessEnv.dll [84992]
O83 - Search Svchost Services: browser (browser) . (.Microsoft Corporation - DLL de Serviço Pesquisador de Computadores.) -- C:\Windows\System32\browser.dll [81920]
O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Serviço de Gerenciamento de Chaves.) -- C:\Windows\System32\KMSVC.DLL [68096]

---\\ Lista das exceções do FireWall (FirewallRules) (O87) (18) - 7s
O87 - FAEL: "{FB7AD794-5608-4DC1-AD97-AC0A33588C8A}" [In-None-P6-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O87 - FAEL: "{EC6ECF4A-4636-4BCF-9399-B08236F8377E}" [In-None-P17-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\Program Files\uTorrent\uTorrent.exe
O87 - FAEL: "TCP Query User{DC6AE02C-08E4-4835-8B71-C0D0C132F0ED}C:\program files\emule\emule.exe" [In-None-P6-TRUE] .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "UDP Query User{78D752E2-980E-4381-9564-0AF3F20D55EB}C:\program files\emule\emule.exe" [In-None-P17-TRUE] .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "TCP Query User{6079D65E-F7B6-449E-92C5-6127E30E3F66}C:\program files\java\jre6\bin\javaw.exe" [In-None-P6-TRUE] .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "UDP Query User{48FE3C71-79F5-431E-9EFF-8BF124F0D6EF}C:\program files\java\jre6\bin\javaw.exe" [In-None-P17-TRUE] .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "TCP Query User{F1BCF698-0106-4BD2-B521-ED3FBC9D4472}C:\program files\emule\emule.exe" [In-None-P6-TRUE] .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "UDP Query User{E0FCC238-3C7A-46EA-A92A-4A6A50B097A4}C:\program files\emule\emule.exe" [In-None-P17-TRUE] .(.http://www.emule-project.net - eMule.) -- C:\program files\emule\emule.exe
O87 - FAEL: "TCP Query User{AA97F7AB-05C6-4C18-A9AB-C03C1B50B461}C:\program files\java\jre6\bin\javaw.exe" [In-None-P6-TRUE] .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "UDP Query User{F59BF4BE-CD7C-4C93-A89B-D71DC6B616E6}C:\program files\java\jre6\bin\javaw.exe" [In-None-P17-TRUE] .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\javaw.exe
O87 - FAEL: "TCP Query User{428ED7F9-A686-4007-A650-75A18C8D4AA0}C:\program files\utorrent\utorrent.exe" [In-None-P6-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe
O87 - FAEL: "UDP Query User{09E1D67C-3A6B-447A-8B69-DE8F09326AA2}C:\program files\utorrent\utorrent.exe" [In-None-P17-TRUE] .(.BitTorrent, Inc. - µTorrent.) -- C:\program files\utorrent\utorrent.exe
O87 - FAEL: "TCP Query User{1A6412CF-9623-4468-9689-2D1A288EA4AE}C:\program files\java\jre6\bin\java.exe" [In-None-P6-TRUE] .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe
O87 - FAEL: "UDP Query User{97569D32-4DED-4476-8956-2C87BC453838}C:\program files\java\jre6\bin\java.exe" [In-None-P17-TRUE] .(.Sun Microsystems, Inc. - Java(TM) Platform SE binary.) -- C:\program files\java\jre6\bin\java.exe
O87 - FAEL: "TCP Query User{36774E8E-E1B7-45AB-A552-D94D91AA9DAE}C:\program files\litecoin\litecoin-qt.exe" [In-None-P6-TRUE] .(...) -- C:\program files\litecoin\litecoin-qt.exe
O87 - FAEL: "UDP Query User{976D761E-4036-467A-96B4-0655D6FC265F}C:\program files\litecoin\litecoin-qt.exe" [In-None-P17-TRUE] .(...) -- C:\program files\litecoin\litecoin-qt.exe
O87 - FAEL: "TCP Query User{529CA9DB-D547-4675-AD88-DD096BDDC3F1}C:\program files\ppcoin\ppcoin-qt.exe" [In-None-P6-TRUE] .(...) -- C:\program files\ppcoin\ppcoin-qt.exe
O87 - FAEL: "UDP Query User{BAA11EB2-FDB8-4C36-A818-35364ADA0E47}C:\program files\ppcoin\ppcoin-qt.exe" [In-None-P17-TRUE] .(...) -- C:\program files\ppcoin\ppcoin-qt.exe

---\\ Scâner Aditional (088) (1) - 0s
C:\Users\ISAIAS\AppData\Local\Comodo =>PUP.Optional

---\\ Resumo dos elementos encontrados na sua estação de trabalho (1) - 0s
http://www.nicolascoolman.fr/blog =>PUP.Optional

~ End of the scan, 8906 items in 412 seconds (805)(0)()

Publicité


Signaler le contenu de ce document

Publicité